function login($username, $password)
	{
	    session_start();
		
		$user = user_read($username);
		
		//user does not exist
		if (!$user) return FALSE;
		
		if ($user->password == $password)
		
		$_SESSION['username'] = $username;
		$_SESSION['password'] = $password; 
		
		return TRUE;
		
		else 
		return FALSE;
	}
		